$ rpki-client -vvf rpki.apnic.net/member_repository/A916C128/664A9BCAFA6D11E3B6AC23505911EA32/tWQnMiZdQL91ypSp7IEZIRwbmzI.mft File: tWQnMiZdQL91ypSp7IEZIRwbmzI.mft (raw, json) Hash identifier: brnlakhkv9zAM4APy71x5ZS/IoT//HfdPOgwOYixQQM= Subject key identifier: 69:89:FF:47:F4:29:22:CF:76:ED:BD:F4:CC:BF:63:B9:17:7F:42:54 Authority key identifier: B5:64:27:32:26:5D:40:BF:75:CA:94:A9:EC:81:19:21:1C:1B:9B:32 Certificate issuer: /CN=A916C128/serialNumber=B5642732265D40BF75CA94A9EC8119211C1B9B32 Certificate serial: 2C80 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tWQnMiZdQL91ypSp7IEZIRwbmzI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916C128/664A9BCAFA6D11E3B6AC23505911EA32/tWQnMiZdQL91ypSp7IEZIRwbmzI.mft Manifest number: 2BD7 Signing time: Tue 04 Nov 2025 15:35:13 +0000 Manifest this update: Tue 04 Nov 2025 15:35:12 +0000 Manifest next update: Tue 11 Nov 2025 15:35:12 +0000 Files and hashes: 1: tWQnMiZdQL91ypSp7IEZIRwbmzI.crl (hash: fZgOHRM6lROmKhsG5hKIeNi9FtdUi3PO6vJti6FZ9kc=) 2: 13461F60ABDC11EDAE837666C4F9AE02.roa (hash: NyqTZQOkUqWoaM40ZktUlOiopL6FbxfHLQstlqudq2c=) 3: E0CC928CABDE11ED954F5C84C4F9AE02.roa (hash: LZsU00B4/gx6lo+GhGlRRaLNP1lXi+x7ZDLzlvJoUls=) 4: DF821D20ABDE11ED954F5C84C4F9AE02.roa (hash: je3auOg70+6cT16YOal/ttbSxW+A5XuODnJlOPCEZSc=) 5: 4462F034F0EC11EB9D0B176AC4F9AE02.roa (hash: aSO9wjURcYGva8bAjVzZpymdiAuS5bByHQh+Eq4/Ung=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916C128/664A9BCAFA6D11E3B6AC23505911EA32/tWQnMiZdQL91ypSp7IEZIRwbmzI.crl rsync://rpki.apnic.net/member_repository/A916C128/664A9BCAFA6D11E3B6AC23505911EA32/tWQnMiZdQL91ypSp7IEZIRwbmzI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tWQnMiZdQL91ypSp7IEZIRwbmzI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 15:35:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11392 (0x2c80) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916C128, serialNumber=B5642732265D40BF75CA94A9EC8119211C1B9B32 Validity Not Before: Nov 4 15:35:12 2025 GMT Not After : Nov 11 15:35:12 2025 GMT Subject: CN=690a1d30-87c4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:9b:3f:28:0d:de:e0:8c:f3:9a:23:25:d2:02: 6b:b6:e8:5d:af:8b:e9:c5:55:8f:17:ef:fc:51:74: 01:df:b8:06:16:48:5e:12:01:6b:6d:be:b5:86:a1: 07:6a:73:20:8c:4c:c5:ef:28:03:72:4c:9c:56:00: 52:04:28:59:49:e4:24:17:4a:fa:29:d9:c1:d9:87: 6f:ed:2d:ba:de:d3:66:21:23:c5:1d:e9:36:42:8e: 1c:61:76:95:28:d2:43:8f:ca:26:ad:0f:aa:43:1b: 6f:37:cb:63:6c:02:fb:45:e0:75:8a:ce:9b:0b:0d: d0:10:e3:39:4d:48:b7:9a:16:29:f0:1e:93:a1:60: 16:5d:c7:42:f3:f1:81:62:cc:98:14:90:35:2e:97: ed:83:45:0d:16:c6:11:6c:d8:a4:74:bd:57:bf:5a: fd:ce:f7:cf:ff:9d:19:63:8a:86:49:f0:f4:1c:92: 4c:e9:fd:00:e4:df:d4:7f:3f:2e:ed:af:c4:53:14: 6b:39:c7:05:d0:2e:81:73:d7:3f:f3:b3:59:59:3e: 43:4d:c6:e7:8e:c5:0d:7f:60:14:a5:ff:63:cd:81: 5b:ba:d5:9a:76:9c:81:03:ca:1a:41:00:4b:18:03: c1:e2:8c:d0:6c:b6:3d:8c:db:78:d2:56:c0:85:75: 7f:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:89:FF:47:F4:29:22:CF:76:ED:BD:F4:CC:BF:63:B9:17:7F:42:54 X509v3 Authority Key Identifier: keyid:B5:64:27:32:26:5D:40:BF:75:CA:94:A9:EC:81:19:21:1C:1B:9B:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916C128/664A9BCAFA6D11E3B6AC23505911EA32/tWQnMiZdQL91ypSp7IEZIRwbmzI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tWQnMiZdQL91ypSp7IEZIRwbmzI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916C128/664A9BCAFA6D11E3B6AC23505911EA32/tWQnMiZdQL91ypSp7IEZIRwbmzI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2f:62:4c:63:84:2b:fe:1e:c6:ae:eb:4f:02:06:8f:e8:75:48: ba:1b:cc:46:44:a4:d7:bb:e6:6b:9e:dc:13:60:80:64:d5:ca: ad:dc:f5:c7:27:3a:4a:a9:32:78:e2:e1:36:18:84:55:57:20: 27:ff:31:63:2b:31:eb:fa:2c:a7:40:53:e5:8f:ba:47:8a:45: 3a:01:fe:13:d9:14:40:26:0d:33:eb:94:98:13:1d:5c:13:12: 1e:d1:32:47:52:03:de:80:dd:af:d7:62:95:eb:9d:6d:1f:69: 0b:17:95:f7:db:c0:9e:ad:b5:ae:f9:ed:a4:12:ff:44:87:31: a2:e0:f0:b1:dc:06:73:e0:b5:16:42:7c:72:dd:3e:2b:e8:f6: 60:1c:c9:53:0d:39:10:6f:49:00:6c:d5:3d:64:8f:e2:43:bd: c3:e2:35:c0:d5:2d:70:06:ce:76:e7:25:dc:52:70:50:a7:74: f0:f7:b4:36:75:f1:d0:f4:49:58:96:71:07:73:df:a9:42:15: dc:7f:0e:12:5e:bb:15:cd:ac:bf:53:61:7e:fe:cd:aa:c6:43: 52:66:b4:a2:e4:25:f0:7c:a7:46:72:4c:46:8d:f5:01:f9:a0: d6:7c:12:ff:11:36:52:62:c9:c5:03:37:91:b0:86:ad:b4:10: 8e:26:81:5d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICLIAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkMxMjgxMTAvBgNVBAUTKEI1NjQyNzMyMjY1RDQwQkY3NUNBOTRBOUVDODExOTIx MUMxQjlCMzIwHhcNMjUxMTA0MTUzNTEyWhcNMjUxMTExMTUzNTEyWjAYMRYwFAYD VQQDEw02OTBhMWQzMC04N2M0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApZs/KA3e4IzzmiMl0gJrtuhdr4vpxVWPF+/8UXQB37gGFkheEgFrbb61hqEH anMgjEzF7ygDckycVgBSBChZSeQkF0r6KdnB2Ydv7S263tNmISPFHek2Qo4cYXaV KNJDj8omrQ+qQxtvN8tjbAL7ReB1is6bCw3QEOM5TUi3mhYp8B6ToWAWXcdC8/GB YsyYFJA1Lpftg0UNFsYRbNikdL1Xv1r9zvfP/50ZY4qGSfD0HJJM6f0A5N/Ufz8u 7a/EUxRrOccF0C6Bc9c/87NZWT5DTcbnjsUNf2AUpf9jzYFbutWadpyBA8oaQQBL GAPB4ozQbLY9jNt40lbAhXV/bQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGmJ/0f0 KSLPdu299My/Y7kXf0JUMB8GA1UdIwQYMBaAFLVkJzImXUC/dcqUqeyBGSEcG5sy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QzEyOC82NjRBOUJDQUZB NkQxMUUzQjZBQzIzNTA1OTExRUEzMi90V1FuTWlaZFFMOTF5cFNwN0lFWklSd2Jt ekkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RXUW5NaVpkUUw5MXlwU3A3SUVaSVJ3Ym16SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QzEyOC82NjRBOUJDQUZBNkQxMUUzQjZBQzIzNTA1OTExRUEzMi90V1FuTWlaZFFM OTF5cFNwN0lFWklSd2JtekkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAvYkxjhCv+Hsau608CBo/odUi6G8xGRKTXu+ZrntwTYIBk1cqt3PXH JzpKqTJ44uE2GIRVVyAn/zFjKzHr+iynQFPlj7pHikU6Af4T2RRAJg0z65SYEx1c ExIe0TJHUgPegN2v12KV651tH2kLF5X328CerbWu+e2kEv9EhzGi4PCx3AZz4LUW Qnxy3T4r6PZgHMlTDTkQb0kAbNU9ZI/iQ73D4jXA1S1wBs525yXcUnBQp3Tw97Q2 dfHQ9ElYlnEHc9+pQhXcfw4SXrsVzay/U2F+/s2qxkNSZrSi5CXwfKdGckxGjfUB +aDWfBL/ETZSYsnFAzeRsIattBCOJoFd -----END CERTIFICATE-----Generated at Wed Nov 5 13:31:05 2025 by rpki-client